Warning Message When Creating A Keystore
When we try to list the contents of the keystore, using the below command,
keytool -list -v -keystore adkeystore.dat
Enter keystore password:
Keystore type: JKS
Keystore provider: SUN
Your keystore contains 1 entry
Alias name: prod_apps002
Creation date: Jan 26, 2012
Entry type: PrivateKeyEntry
Certificate chain length: 1
Certificate[1]:
Owner: CN=PROD_apps002, OU=apps, O=apps002, C=US
Issuer: CN=PROD_apps002, OU=apps, O=apps002, C=US
Serial number: 4f208085
Valid from: Thu Jan 26 01:21:57 AST 2012 until: Tue Jan 16 01:21:57 AST 2052
Certificate fingerprints:
MD5: XX: XX XX XX
SHA1: XX: XX XX XX
SHA256: XX: XX XX XX
Signature algorithm name: SHA1withDSA
Subject Public Key Algorithm: 1024-bit DSA key
Version: 3
*******************************************
*******************************************
Warning:
The JKS keystore uses a proprietary format. It is recommended to migrate to PKCS12 which is an industry standard format using "keytool -importkeystore -srckeystore adkeystore.dat -destkeystore adkeystore.dat -deststoretype pkcs12".
http://www.oracle.com/technetwork/java/javase/8u151-relnotes-3850493.html
"October 17, 2017"
"security-libs/java.security
Add warnings to keytool when using JKS and JCEKS
When keytool is operating on a JKS or JCEKS keystore, a warning may be shown
that the keystore uses a proprietary format and migrating to PKCS12 is
recommended. The keytool's -importkeystore command is also updated so that it
can convert a keystore from one type to another if the source and destination
point to the same file.
The warning could be ignored. It's due to new version of java.
There is no way to suppress these warning messages. There is way you can do it by setting the log level lower than warning, but which is not recommended.
The bug says all that you can do is ignore these warning messages.
Reference:
2376435.1
No comments:
Post a Comment